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Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the application: 
Listing of Claims: 

1 . (currently amended): A computer implemented method for validating a user's 
authorization to run a tool in a service control manager (SCM) module by a security manager, 
comprising: 

obtaining a list of targ e t nod e s and a tool d e finition from creating a runnable tool, 
wherein the runnable tool encapsulates a tool and includes a tool definition and a list of target 
nodes on which the tool executes, wherein the tool definition specifies roles associated with a 
the tool via an authorization model, and wherein a user assigned with one or more of the roles 
define which manag e ment functions a user can run the tool perform on the target nodes 
asso c iated with th e SCM modul e; 

obtaining extracting from the tool definition the roles associated with a the tool from 
the tool definition ; 

checking if any of the roles associated with the tool are enabled; 

checking if the user has authorization is authorized on the target nodes; and 

checking if the user is assigned with authorized for at least one of the tool's enabled 
roles on all of the target nodes , wherein the user is authorized to run a requested tool if the 
user is assigned with one or more of the enabled roles associated with the requested tool on 
all of the target nodes . 

2. (currently amended): The computer implemented method of claim 1 , wherein the 
obtaining the roles step includes obtaining the roles associated with the tool, wherein the tool 
may be assigned one or more roles. 

3. (currently amended): The computer implemented method of claim 1, further 
comprising validating the roles. 

4. (currently amended): The computer implemented method of claim 1 , further 
comprising obtaining the user's authorized roles for each node in the list of target nodes from 
a hash table. 

5. (currently amended): The computer implemented method of claim 1, further 
comprising reporting whether the tool is runnable by the user. 
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6. (currently amended): The computer implemented method of claim 5, wherein the 
reporting step includes reporting the tool as not runnable by the user when all the roles are 
disabled. 

7. (currently amended): The computer implemented method of claim 5, wherein the 
reporting step includes reporting the tool as not runnable by the user when the user is not 
authorized on each of the nodes. 

8. (currently amended): The computer implemented method of claim 5, wherein the 
reporting step includes reporting the tool as not runnable by the user when the user is not 
authorized for any of the enabled roles on all of the nodes. 

9. (currently amended): A service control manager (SCM) module implemented by a 
computer for validating a user's authorization to run a tool on one or more target nodes, 
comprising: 

target nodes that are managed servers; 

tools that specify commands or options on the target nodes, each tool including a tool 
definition, wherein the tool definition specifies roles associated with a tool via an 
authorization model; 

roles associated with a tool, wherein a user assigned with one or more of the roles 
d e fining which manag e m e nt functions a user can fun the tool perform on the target nodes 
associated with th e SCM modul e; and 

a security manager that checks whether any of the roles associated with the tool is 
enabled, and whether the user is authorized for assigned with one of the enabled roles on all 
of the target nodes, wherein the user is authorized to run a requested tool if the user is 
assigned with one or more of the enabled roles associated with the requested tool on all of the 
target nodes . 

10. (original): The SCM module of claim 9, wherein the tools are single-system 
aware (SSA) tools. 

1 1 . (original): The SCM module of claim 9, wherein the tools are multi-system 
aware (MSA) tools. 

12. (original): The SCM module of claim 9, wherein the target nodes can be target 
node groups. 

1 3 . (currently amended): A computer implemented method for validating a user' s 
authorization to run a tool in a service control manager (SCM) module by a security manager, 
comprising: 
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obtaining a list of targ e t nod e s and a tool d e finiti o n from creating a runnable tool, 
wherein the runnable tool encapsulates a tool and includes a tool definition and a list of target 
nodes on which the tool executes, wherein the tool definition specifies roles associated with a 
the tool via an authorization model, and wherein a user assigned with one or more of the roles 
define which management functions a user can run the tool perform on the target nodes 
associat e d with th e SCM module ; 

obtaining extracting from the tool definition the roles associated with a the tool from 
the tool definition ; 

checking if any of the roles associated with the tool are enabled; and 

checking if the user is assigned with authorized for one of the roles associated with 
the tool on all of the target nodes, wherein the user is authorized to run a requested tool if the 
user is assigned with one of the roles associated with the requested tool on all of the target 
nodes is authorized to run the tooL 

14. (currently amended): The computer implemented method of claim 13, wherein the 
obtaining the roles step includes obtaining the roles associated with the tool, wherein the tool 
may be assigned one or more roles. 

15. (currently amended): The computer implemented method of claim 13, further 
comprising validating the roles. 

16. (currently amended): The computer implemented method of claim 13, further 
comprising obtaining the user's authorized roles for each node in the list of target nodes from 
a hash table. 

17. (currently amended): The computer implemented method of claim 13, further 
comprising reporting whether the tool is runnable by the user. 

18. (currently amended): The computer implemented method of claim 1 7, wherein the 
reporting step includes reporting the tool as not runnable by the user when all the roles are 
disabled. 

1 9. (currently amended): The computer implemented method of claim 1 7, wherein the 
reporting step includes reporting the tool as not runnable by the user when the user is not 
authorized on each of the nodes. 

20. (currently amended): The computer implemented method of claim 17, wherein the 
reporting step includes reporting the tool as not runnable by the user when the user is not 
authorized for any of the enabled roles on all of the nodes. 
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